科技回声

joshu大约 12 年前

I just want to take a bit of space and mention both how useful MITMproxy has been for me in the past and also how generally awesome Aldo Cortesi is; I hope I have opportunity to work with him someday.

评论 #5710928 未加载

est大约 12 年前

For SSL, I hope there's more tools like Echo Mirage[1] or PaiMei[2] which could just hook SSL dynamic modules instead of MITM CA cert spoofing.<p>You can encrypt/decrypt TLS/SSL traffic by intercepting read/write calls for Schannel SSP/OpenSSL. I hope some project could support Android and iOS using similar methods.<p>[1] <a href="http://www.bindshell.net/tools/echomirage" rel="nofollow">http://www.bindshell.net/tools/echomirage</a><p>[2] <a href="https://github.com/OpenRCE/paimei" rel="nofollow">https://github.com/OpenRCE/paimei</a>

评论 #5710068 未加载

评论 #5710926 未加载

passfree大约 12 年前

You can also try proxify (<a href="http://www.gnucitizen.org/blog/landing-proxify/" rel="nofollow">http://www.gnucitizen.org/blog/landing-proxify/</a>) actual cross-platform binary that is based on top of NSS. It has been designed to be really fast as it is not buffering anything. It also has a lot of useful command line options.

MitmProxy 0.9 is out

3 条评论

MitmProxy 0.9 is out

3 条评论